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FIG. 5C shows the format of a reregister message. The reregister message shows each of 
the fields shown in FIG. 5B with the exception of the Wrap Token field. The reregister message 
comprises a Protocol Version field, a Message Type field, a Message Length field, an Initialize 
n O^—Token field, a Wrap Token Length field, and a four byte Interval Period field. The Interval 

(a 

Period value specifies a random duration for a group member to attempt to reregister. The 
default of the interval field is 0, indicating that the group member should immediately reregister. 



3. Please replace the second paragraph on page 26, which starts on line 5, with the 
following new paragraph: 



oh 



Under the above approach to key update, one of the subscribers 711,715 may receive an 
event message with an advanced key version indicating that it needs to reregister. Also, one 
subscriber 711,715 may reregister with an event server 707a that has not received the key 
update. This is possible, for instance, when the process of replicating the directory servers has 
not finished. In this case, the subscriber 71 1 or 71 5 should reregister with the master event 
server 707a for the particular event type. However, if the re-registration process fails, subscriber 
71 1, 715 will proceed to a different event server 701a. The re-registration process could fail, for 
example, if the master event server 707a is down. 



IN THE CLAIMS : / 

Please amend Claims 1-6, 8, 10, 17, 19-20, 23-24, and 26-29 as indicated below. A set of 
"clean" claims and a set of "marked-up" claims have been provided. Although not all claims 
have been amended, all claims are reproduced in the set of "clean" claims for convenience. 
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1 1 . A method for securely establishing communication in a multicast group of nodes of 

2 a network, in which the network includes publisher nodes, subscriber nodes, a multi- 

3 master directory that stores information about events in the network and that can 

4 authenticate the subscriber nodes and the publisher nodes, wherein each of the 

5 subscriber nodes and the publisher nodes receives a unique private key and that can 

6 determine events that the subscribers and the publishers may process, the method 

7 comprising the steps of: 

8 registering the subscribers and the publishers with an event server configured to 

9 determine whether the publishers are authorized to produce certain events 

10 corresponding to event types and whether the subscribers are authorized to 

1 1 receive the certain events in response to the step of registering; and 

12 generating, with the event server, a group session key for establishing the multicast 

13 group, the group session key being encrypted in a first message that has a 

14 prescribed format. 

1 2. The method as recited in Claim 1, further comprising the steps of: 

2 receiving a second message from the subscribers in response to the subscribers 

3 determining whether the first message corresponds to a correct key version; 

4 updating the group session key; and 

5 selectively reregistering the subscribers at the event server. 

1 3. The method as recited in Claim 1, wherein the prescribed format of the first message 

2 conforms with lightweight directory access protocol (LDAP). 
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1 4. The method as recited in Claim 1, wherein the prescribed format of the first message 

2 comprises a protocol version number field, a message type field, and a message 

3 length field. 



The method as recited in Claim 1, wherein the directory authenticates by controlling 
access in conjunction with utilizing an external authentication service that allows 
extending membership of the multicast group to subscribers with no corresponding 
objects in the directory. 



1 6. The method as recited in Claim 5, wherein the external authentication service is 

2 supplied by a Kerberos server. 



1 
2 



7. The method as recited in Claim 1 , wherein the event server manages the private keys of 
the subscribers and the publishers. 



1 8. 
2 

/ 

3 ^ 
4 
5 
6 



The method as recited in Claim 2, wherein the step of updating comprises: 
creating a new group session key; 

modifying an object in the directory based upon the new group session key by using a 

change password protocol; 
sending a new message that contains the new group session key to the subscribers; and 
notifying the subscribers to reregister. 
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1 9. The method as recited in Claim 1, wherein the step of registering comprises 

2 performing access control check of the subscribers by the event server. 



1 10. A communication system for creating a plurality of secure multicast groups in a 

2 network that includes a plurality of principals configured for functioning as 

3 subscribers and publishers, each of the principals having a private key, a multi- 

4 master directory comprising a directory server for communicating with one or more 

5 of the principals to authenticate each of the principals and to provide access control, 

6 the multi-master directory controlling access on a per object and per attribute basis, 

7 the communication system comprising: 
r ^ 

8 \y an event server coupled to the plurality of principals for registering the plurality of 

9 principals and for determining whether the principals are authorized to 

10 produce certain events when the principals are functioning as publishers and 

1 1 whether the principals are authorized to receive the certain events when the 

12 principals are functioning as subscribers; and 

1 3 means in the event server for creating a group session key for establishing one of the 

14 multicast groups, by distributing the group session key in an encrypted 

1 5 message to the subscribers, the encrypted message encapsulating the group 

16 session key according to a prescribed format; 

17 means in the event server for updating the group session key by utilizing a change 

1 8 password protocol to modify an object in the directory; 
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19 - / means in the event server for notifying the subscribers to reregister in response to the 

On 

20 updating of the group session key. 



1 11. The communication system as recited in Claim 1 0, wherein the directory server is 

2 collocated with the event server, the directory server and the event server 

3 participating in a common one of the multicast groups. 



1 12. The communication system as recited in Claim 10, wherein the prescribed format 

2 of the message conforms with lightweight directory access protocol (LDAP). 

1 13. The communication system as recited in Claim 10, wherein the directory 

2 authenticates by controlling access in conjunction with utilizing an external 

3 authentication service that allows extending membership of the multicast groups to 

4 subscribers with no corresponding objects in the directory. 



1 14. The communication system as recited in Claim 13, wherein the external 

2 authentication service is supplied by a Kerberos server. 

1 15. The communication system as recited in Claim 10, wherein the prescribed format 

2 of the message comprises a protocol version number field, a message type field, 

3 and a message length field. 
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1 16. The communication system as recited in Claim 10, wherein the event server 

2 manages the private keys. 



1 17. The communication system as recited in Claim 10, wherein the event server 

2 updates the group session key by performing the steps of: 

3 creating a new group session key; 

4 modifying the object based upon the new group session key by using the change 

5 password protocol; 

6 sending a new message that contains the new group session key to the subscribers; and 

7 notifying the subscribers to reregister. 



1 18. The communication system as recited in Claim 10, wherein the event server 

2 performs access control check of the subscribers during registration of the 

3 subscribers. 



1 19. A computer system functioning as an event server and for establishing multiple 

2 secure multicast groups, the computer system comprising: 

3 a communication interface for communicating with a plurality of nodes and for 

4 fl interfacing a multi-master directory to authenticate the computer system and 

5 the plurality of nodes, the multi-master directory having access controls on a 

6 per object and per attribute basis, wherein the nodes access the directory to 

7 determine events that the nodes may process; 

8 a bus coupled to the communication interface for transferring data; 
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9 one or more processors coupled to the bus for selectively generating a group session 

10 key and private keys corresponding to the plurality of nodes, the group 

1 1 session key being updated by utilizing a change password protocol to modify 

12 an object corresponding to the events in the directory; 

1 3 an event server that is executed by the one or more processors; and 

14 a memory coupled to the one or more processors via the bus, the memory including one or more 

1 5 sequences of instructions which when executed by the one or more processors cause the 

16 one or more processors to perform the steps of registering the plurality of nodes, 

1 7 (\ determining whether the nodes are authorized to produce and authorized to receive 

1 8 certain events corresponding to objects of the directory, distributing the group session 

19 key to the nodes via a message, the message encapsulating the group session key 

20 according to a prescribed format, and selectively reregistering the nodes in response to 

21 updating the group session key. 

1 20. The computer system as recited in Claim 19, wherein the directory is collocated with 

2 the event server, the directory and the event server participating in a common one of 

3 the multicast groups. 



4 21 . The computer system as recited in Claim 1 9, wherein the prescribed format of the 

5 message conforms with light weight directory access protocol (LDAP). 



1 22. The computer system as recited in Claim 19, wherein the directory authenticates by 

2 using authentication services of the directory in conjunction with a Kerberos service 
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that allows extending membership to the multicast groups to nodes with no objects 
in the directory. 




1 23. The computer system as recited in Claim 19, wherein the event server manages the 

2 private keys of the plurality of nodes. 



24. 




The computer system as recited in Claim 19, wherein the event server updates the 
group session key by performing the steps of: 
creating a new group session key; 

modifying the object based upon the new group session key by using a change 
password protocol; 

sending a new message that contains the new group session key to the subscribers; and 
notifying the subscribers to reregister. 



1 25. The computer system as recited in Claim 19, wherein the computer system 

2 performs access control check of the nodes during registration. 



1 26. 
2 

y 

5 
6 



A computer-readable medium carrying one or more sequences of instructions for 
securely establishing communication in a multicast group of nodes of a network, 
in which the network includes publisher nodes, subscriber nodes, a multi-master 
directory that stores information about events in the network and that can 
authenticate the subscriber nodes and the publisher nodes, whereby each of the 
subscriber nodes and the publisher nodes receives a unique private key and that 
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7 can determine events that the subscribers and the publishers may process, 

8 wherein execution of the one or more sequences of instructions by one or more 

9 processors causes the one or more processors to perform the steps of: 

10 registering the subscribers and the publishers with an event server, the event 

1 1 server determining whether the publishers are authorized to produce 

12 certain events corresponding to event types and whether the subscribers 

13 are authorized to receive the certain events in response to the step of 

14 registering; and 

15 generating a group session key for establishing the multicast group, the group 

16 session key being encrypted in a first message that has a prescribed 

17 format. 



1 27. A computer-readable medium as recited in Claim 26, further comprising the steps 

2 of: 

3 receiving a second message from the subscribers in response to the subscribers 

4 determining whether the first message corresponds to a correct key version; 

5 updating the group session key; and 

6 selectively reregistering the subscribers at the event server. 

1 28. A computer-readable medium as recited in Claim 26, wherein the directory 

2 authenticates by controlling access in conjunction with utilizing an external 

3 authentication service that allows extending membership of the multicast groups to 

4 subscribers with no corresponding objects in the directory. 
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1 29. A computer-readable medium as recited in Claim 27, wherein the step of updating 

2 comprises: 

3 creating a new group session key; 

4 modifying an object in the directory based upon the new group session key by using a 

5 change password protocol; 

6 sending a new message that contains the new group session key to the subscribers; and 

7 notifying the subscribers to reregister. 



1 30. A computer-readable medium as recited in Claim 26, wherein the step of registering 

2 comprises performing access control check of the subscribers by the event server. 
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